On Mon, Mar 9, 2015 at 11:38 AM, Michael Ströder
wrote:
> Ryan Sleevi wrote:
> > Given that sites in consideration already have multiple existing ways to
> > mitigate these threats (among them, Certificate Transparency, Public Key
> > Pinning, and CAA),
>
> Any clients which already make use of C
On Mon, March 9, 2015 8:38 am, Michael Ströder wrote:
> Any clients which already make use of CAA RRs in DNS?
>
> Or did you mean something else with the acronym CAA?
>
> Ciao, Michael.
CAA (RFC 6844) is not for clients. It's for CAs, as another way of
restricting CAs authorized to issue for a
Ryan Sleevi wrote:
> Given that sites in consideration already have multiple existing ways to
> mitigate these threats (among them, Certificate Transparency, Public Key
> Pinning, and CAA),
Any clients which already make use of CAA RRs in DNS?
Or did you mean something else with the acronym CAA?
3 matches
Mail list logo